Light Types for Polynomial Time Computation in Lambda- Calculus * 



Patrick Baillot Kazushige Terui 

Laboratoire d'Informatique de Paris-Nord /CNRS National Institute of Informatics 
Universite Paris-Nord, France Tokyo, Japan 

pb @ lipn.univ-paris 1 3 .fr terui @ nii. ac .jp 



Abstract 

We propose a new type system for lambda-calculus en- 
suring that well-typed programs can be executed in polyno- 
mial time: Dual light affine logic (DLAL). DLAL has a sim- 
ple type language with a linear and an intuitionistic type 
arrow, and one modality. It corresponds to a fragment of 
Light affine logic (LAL). We show that contrarily to LAL, 
DLAL ensures good properties on lambda-terms: subject 
reduction is satisfied and a well-typed term admits a poly- 
nomial bound on the reduction by any strategy. Finally we 
establish that as LAL, DLAL allows to represent all poly- 
time functions. 



1 Introduction 

Functional languages like ML assist the programmer 
with prevention of such errors as run-time type errors, 
thanks to automatic type inference. One could wish to ex- 
tend this setting to verification of quantitative properties, 
such as time or space complexity bounds (see for instance 
y8|). We think that progresses on such issues can fol- 
low from advances in the topic of Implicit Computational 
Complexity, the field that studies calculi and languages 
with intrinsic complexity properties. In particular some 
lines of research have explored recursion-based approaches 
( l20l l71[T7ll8l lI6l ) and approaches based on linear logic to 
control the complexity of programs (| 14i ll9l ). 

Here we are interested in Light affine logic (LAL) 
(Ein^), a logical system designed from Linear logic and 
which characterizes polynomial time computation. By the 
Curry-Howard correspondence proofs in this logic can be 
used as programs. Some nice aspects of this system with 
respect to other approaches are the facts that it includes 
higher-order types as well as polymorphism. Moreover it 
naturally extends to a consistent naive set theory, in which 
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one can reason about polynomial time concepts. In particu- 
lar the provably total functions of that set theory are exactly 
the polynomial time functions r iI4ll26I V 

However the syntax of LAL is quite delicate, in partic- 
ular because it has two modalities. Some term languages 
have been proposed (in particular in 1251 ') but programming 
is in general difficult. We think a better grasp would be 
given on this system if one could use as language plain 
lambda-calculus and then in a second phase have an auto- 
matic (or semi-automatic) LAL type inference performed. 
In case of success a well-typed program would have the 
guarantee that it can be executed in polynomial time. 

This approach has been examined in f^^. In particular 
it has been shown in 1 4 1 that type inference in propositional 
LAL is decidable. However some problems remain: 

• First, to execute the well-typed program with the ex- 
pected polynomial bound the lambda-term is not suf- 
ficient. One has to use the type derivation and extract 
a light lambda term (introduced in 1251 ) or a proof-net 
(1 2 1) that can be executed with the correct bound. In 
particular this means that if we use ordinary abstract 
machines for the evaluation we do not have any guar- 
antee on the execution time. 

• Second, even if type inference is decidable we do not 
have for the moment any efficient procedure. The diffi- 
culty actually comes from two points: the type deriva- 
tion might need to specify some sharing of subterm; 
moreover the language of types is large (because there 
are two modalities) and this results in an important 
search space to explore. 

To try to overcome these problems we propose here a new 
type system, that we call Dual light affine logic (DLAL). It 
corresponds to a simple fragment of LAL. It relies on the 
idea of replacing the ! modality by two notions of arrows: 
a linear one and an intuitionistic one. This is in the line of 
the works of Barber and Plotkin (Dual intuitionistic linear 
logic, [6 1) and Benton (|9|). DLAL then offers the follow- 
ing advantages over LAL as a type system: 
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• Its language of types is 'smaller', in the sense that it 
corresponds to a strict subset of LAL types. 

• DLAL keeps the same properties as LAL (P- 
completeness and polynomial bound on execution) but 
ensures the complexity bound on the lambda-term it- 
self: if a term is typable one can extract the bound 
from the derivation, then forget about the type and exe- 
cute the term using any strategy (and any abstract ma- 
chine), with the guarantee that the reduction will ter- 
minate within the bound. This means that DLAL of- 
fers a system where the program part and the complex- 
ity specification part are really separate. The program 
part corresponds to the lambda-term and the complex- 
ity specification to the type. 

• We think type inference should become easier, though 
this question still has to be explored. Indeed DLAL of- 
fers the following advantages: first there is no sharing 
in DLAL derivations; second, a large part of the diffi- 
culty of LAL type inference has to do with the fact that 
the types can use any sequence of the two modalities 
!, §, that is to say words over a binary alphabet. For 
this reason the type inference procedure of O used 
words constraints, which are hard to solve. By con- 
trast Elementary affine logic (HAL) (corresponding to 
elementary complexity) has only one modality ! and 
its type inference can be performed using linear con- 
straints, that is to say integer programming. The prob- 
lem of HAL type inference has been shown decidable 
and studied in detail by Coppola et al. (see II 1II12I '). 
starting from motivations in optimal reduction. 

We believe DLAL should be easier to understand than 
LAL and could make this light logic approach accessible 
to a larger community. Moreover DLAL might open the 
way to a closer study of LAL types as well as of evaluation 
procedures for LAL-typed lambda-terms. 

Acknowledgements. We are grateful to Paolo Coppola, 
Simone Martini and Ugo Dal Lago for their accurate read- 
ing and important suggestions. 

2 Background on Light affine logic 

Notations. Given a lambda-term t we denote by FV{t) 
the set of its free variables. Given a variable x we denote by 
no(a;, t) the number of occurrences of x in t. The notation 
— > will stand for /3-reduction on lambda-terms. The size 
1^1 of a term is given by: 

\x\ = 1, \\x.t\ = \t\ + 1, \{tu)\^ \t\ + \u\ + 1. 



2.1 Light affine logic 

The formulas of (Intuitionistic) Light affine logic, LAL, 
are given by the following grammar: 

A,B ■.■.^a\A^ B\\A\'i,A \ "ia.A 

We omit the connective ® which is definable. We will write 
f instead of either ! or §. 

Light affine logic is a logic for polynomial time compu- 
tation in the proofs-as-programs approach to computing. It 
controls the number of reduction (or cut-elimination) steps 
of a proof-program using two ideas: 

(i) stratification, 

(ii) control on duplication. 

Stratification means that the proof-program is divided 
into levels and that the execution preserves this organiza- 
tion. It is managed by the two modalities (also called expo- 
nentials) ! and §. 

Duplication is controlled as in Linear logic: an argument 
can be duplicated only if it has undergone a !-rule (hence 
has a type of the form \A). What is specific to LAL with 
respect to Linear logic is the condition under which one can 
apply a !-rule to a proof-program: it should have at most 
one occurrence of free variable (rule (! i) of Figure^. 

We present the system as a natural deduction type- 
assignment system for lambda-calculus that we call NLAL: 
see Figure[2 We have: 

• for (V i): (*) a does not appear free in F. 

• the (! i) rule can also be applied to a judgement of the 
form ; h u : A (u has no free variable). 

This system uses the notion of discharged formulas, which 
are expressions of the form [A\^ with f = ! or § (resp. !- 
discharged or §-discharged formula), where A is a (proper) 
formula. Discharged formulas only appear on the l.h.s. of 
judgments and the only rules that can be applied to them 
are (! e), (§ e) and (Cntr). In particular note that one cannot 
apply the (^ i) rule to a discharged formula. Discharged 
formulas are merely a technical artifact to handle the rules 
for modalities and contraction in a convenient way; in par- 
ticular we do not use them in final typing judgments. 

The notation F, A will be used for environments at- 
tributing formulas to variables. For environments of dis- 
charged formulas we use the following notation: if F = .Ti : 
Ai,...,Xn : An then [r]| = xi : . . . ,x„ : [A„]|. 

We also write fL = xi : fAi, . . . ,Xn ■ t^n- 

The sequent calculus presentation of LAL is perhaps bet- 
ter known, (we recall it in Appendix|Aj but natural deduc- 
tion is more convenient for our purpose here. In the sequel 
we write F \-lal t : A for a judgement derivable in NLAL. 

The depth of a derivation T) is the maximal number of 
(! i) and (§ i) rules in a branch of V. We denote by the 
size of V defined as its number of judgments. 
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X : Ah X : A 
T,x: Aht: B 



(Id) 



r h Xx.t : A 
Ti^t: A 

ri,r2 : A 

r, A h t : A 
[r]!,[A]§ht:§A 

x: B\-t: A 
X : [B], ht:\A 

Tht:A 



(^ i) 



B 

(Weak) 
(§i) 
(!i) 



r h < : Va.yl 



(Vi)(*) 



Tiht: A^ B FzhMiA 

ri,r2 h{tu):B 
xi : [A]uX2 : [A]uT h t : B 
X : [^]!,r h t[x/xi,x/x2] ■ B 
ril-u:§A r2,x : h i : S 
ri,r2 h t[u/a;] : B 



(^ e) 
(Cntr) 

(§e) 



Vihu:\A T2,x ■.[A]\h t : B 



ri,r2 ht[u/a;] : B 
r h t : Va.A 



(!e) 



r h i : 



(Ve) 



Figure 1. Natural deduction for LAL 



Now, Light affine logic enjoys the following property: 

Theorem 1 (lEIIll) Given a NLAL proof V with depth d, 
its normal form Dq can be computed in 0{\'D\^ ) steps. 

This statement refers to reduction performed either on 
proof-nets (fT7,'T|) or on light lambda terms {fl5\). If the 
depth d is fixed and the size of T> might vary (for instance 
when applying a fixed term to binary integers) then the re- 
sult can be computed in polynomial steps. 
Moreover we have: 

Theorem 2 (Qllll) If a function J : {0, 1}^ {0, 1}* is 

computable in polynomial time, then it is representable in 
LAL. 

2.2 LAL and beta-reduction 

It was shown in |25| that light affine lambda-calculus 
admits polynomial strong normalization: the bound of the- 
orem [0 holds on the length of any reduction sequence of 
light affine lambda-terms. However, this property is not true 
for LAL-typed plain lambda-terms and /^-reduction: indeed 
I2I gives a family of LAL-typed terms (with a fixed depth) 
such that there exists a reduction sequence of exponential 
length. So the reduction of LAL-typed lambda-terms is 
not strongly poly-step (when counting the number of beta- 
reduction steps). Hence it is not strongly polytime, when 
counting the cost of the simulation of the reduction on a 
Turing machine. 

We stress here with an example the fact that normaliza- 
tion of LAL-typed lambda-terms is not even weakly poly- 
time: there exists a family of LAL-typed terms (with fixed 
depth) such that the computation of their normal form on a 
Turing machine (using any strategy) will take exponential 
space, hence exponential time. 



First, observe that the following judgments are derivable: 
yi -.lA-olA^lA \-LAL Xx.ytxx -.lA^lA 

z -.lA ^LAL z :!A 

From this it is easy to check that the following is derivable: 
yi -.lA^lA^lA, . . . ,yn -.lA-olA^lA, z -.lA h 

{Xx.yixx){- ■ ■ {Xx.ynxx)z • • • ) -.lA 

Using (§i), (Cntr) and (!e) we finally get: 

y ■.\{\A^lA^\A),z -.llA h {Xx.yxx)''z : 

Denote by tn the term {Xx.yxx)'^z and by u„ its nor- 
mal form. We have Un — y u„_im„_i, so |u„| ~ 0(2"), 
whereas |i„| — 0{n): the size of u„ is exponential in the 
size of tn- Hence computing m„ from t„ on a Turing ma- 
chine will take at least exponential space (if the result is 
written on the tape as a lambda-term). 

It should be noted though that even if m„ is of exponen- 
tial size, it nevertheless has a type derivation of size 0{n). 
To see this, note that we have z : [A]\,y -.lA —o\A -o 
I A \-LAL yzz -.lA. Now make n copies of it and com- 
pose them by (! e); each time (! e) is applied, the term 
size is doubled. Finally, by applying (! e), (§ i), (Cntr) 
and (! e) as before, we obtain a linear size derivation for 
y -o\A z :!!A h^^L : §!A 

2.3 Discussion 

The counter-example of the previous section illustrates a 
mismatch between lambda-calculus and Light affine logic. 
It can be ascribed to the fact that the (! e) rule on lambda- 
calculus not only introduces sharing but also causes dupli- 
cation. As Asperti neatly points out (|1 1), "while every da- 
tum of type \A is eventually sharable, not all of them are 
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actually duplicable." The above yzz gives a typical exam- 
ple. While it is of type I A and thus sharable, it should not be 
duplicable, as it contains more than one free variable occur- 
rence. The (! e) rule on lambda-calculus, however, neglects 
this delicate distinction, and actually causes duplication. 

Light affine lambda-calculus (Ala) remedies this by 
carefully designing the syntax so that the (! e) rule allows 
sharing but not duplication. As a result, it offers the prop- 
erties of subject-reduction with respect to LAL and polyno- 
mial strong normalization (|25 1). However it is not as sim- 
ple as lambda-calculus; in particular it includes new con- 
structions !(.), §(.) and let (.) be f xin (.) corresponding to 
the management of boxes and contractions in proof-nets. 

The solution we propose here is more drastic: we simply 
do not allow the (! e) rule to be applied to a term of type 
lA. This is achieved by removing judgments of the form 
r \- t -.lA. As a consequence, we also remove types of the 
form A -o\B. Bang ! is used only in the form \A -<> B, 
which we consider as a primitive connective A ^ B. Note 
that it hardly causes a loss of expressiveness in practice, 
since linear logic as decomposition of intuitionistic logic 
does not use types of the form A -^\B. 

3 Dual light affine logic (DLAL) 

The system we propose does not use the ! connective 
but distinguishes two kinds of function spaces (linear and 
non-linear). This approach is analogous to that of Dual in- 
tuitionistic linear logic of Barber and Plotkin (|6|), or the 
system of Benton (li9J), which correspond to Intuitionistic 
linear logic. Thus we call our system Dual light affine logic 
(DLAL). We will see that it corresponds in fact to a well- 
behaved fragment of LAL. 

The language Cd lal of DLAL types is given by: 

A,B ■.■.^a\A^ B\A^B\^A \ Va.A 

There is an unsurprising translation (.)* from DLAL to 
LAL given by: 

• (A B)* \A* -o B*, 

• (.)* commutes to the other connectives. 

Let Cdlal* denote the image of Cdlal by (.)*. 

For DLAL typing we will handle judgements of the form 
F; A h t : C. The intended meaning is that variables in A 
are (affine) linear, that is to say that they have at most one 
occurrence in the term, while variables in F are non-linear. 
We give the typing rules as a natural deduction system that 
we call NDLAL: see Figure |2] There is only one kind of 
discharged formulas, [A]§, which as in the case of NLAL 
are not used in final typing judgments. We have: 

• (*) a does not appear free in Fi, Ai. 



• in the e) rule the r.h.s. premise can also be of the 
form ; h u : A (it has no free variable). 

An alternative sequent calculus presentation is given in 
AppendixiBl 

In the rest of the paper we will write F; A \-dlal t : A 
for a judgement derivable in NDLAL. 

Remark 3 In fact one could give an alternative presenta- 
tion of NLAL without discharged formulas: for that one 
would replace the rules (§ i), (§ e) by a single rule with 
several premises (in the style of M(M ). The properties of 
the system would be the same; we adopted the present for- 
mulation because it is slightly more convenient to prove the 
properties in the next sections. 

Observe that the contraction rule (Cntr) is used only on 
variables on the l.h.s. of the semi-column. It is then straight- 
forward to check the following statement: 

Lemma 4 //'F; A [-dlal t : A then the set FV{t) is in- 
cluded in the variables ofT U A, and ifxGA then we have 
no{x, t) ^ 1. 

We can make the following remarks on NDLAL rules: 

• Initially the variables are linear (rule (Id)); to convert a 
linear variable into a non-linear one we have to use the 
(§ i) rule. Note that it adds a § to the type of the result 
and that the variables that remain hnear (the Xi) get a 
discharged type. 

• the (— o i) (resp. (=^> i)) rule corresponds to abstraction 
on a linear variable (resp. non-linear variable); 

• observe (=^> e): a term of type A ^ B can only be 
applied to a term u with at most one occurrence of free 
variable. 

Note that the only rules which correspond to substitutions 
in the term are (Cntr) and (§ e): in (Cntr) only a variable 
is substituted and in (§ e) substitution is performed on a 
linear variable. Combined with Lemma|4]this ensures the 
following important property: 

Proposition 5 If a derivation T> has conclusion 
F; A '^DLAL t : A then we have \t\ < 

This Proposition shows that the mismatch between lambda- 
calculus and LAL illustrated in the previous section is re- 
solved with DLAL. 

One can observe that the rules of DLAL are obtained 
from the rules of LAL and the (.)* translation, and it follows 
that: 

Proposition 6 Given a lambda-term t, ifV; A I^dlal t : 
A then [F*]:, A* ^lal t : A*. 
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A 



A 



(Id) 



Ti; Ai h Xx.t 


A- 


^ B 


Ti,x : A; Ai 


h t 


B 


Ti; Ai h Xx.t 






ri;Ai hi 


: A 





■i) 



■,T,xi : Bi, . . . ,Xn : Bn ^ t : A 
T;xi : [Bi]§,...,x„ : [B„]§ h t : §A 
Ti; Ai h i : A 



(§ i) 



Ti; Ai h t : Va.A 



(Vi)(*) 



Ti;Aiht: A^ B T2;A2\-u:A 

ri,r2;Ai,A2 h{tu):B 
Ti;Aiht:A^B ; z : C h u : A 



ri,z: C; Ai h {t u) : B 

Xi:A,X2:A,Ti-Aiht:B 
(Cntr) 



e) 



: A,Ti;Ai h t[x/xi,x/x2] : B 
ri;Ail-u:§A r2;x:[A]^,A2ht:B 
Ti,T2;Ai,A2ht[u/x] : B 
ri;Aiht:Va.^ 
ri;Ai h t : A[B/a] ^ ^' 



(§e) 



Figure 2. Natural deduction for DLAL 



The data types of LAL can be directly adapted to DLAL. 
For instance we had as type for tally integers in LAL 
N^^^ = Va.!(a ^ a) ^ §(a a), and in DLAL: 

N = Va.(a a) ^ §(a ^ a) 

W = Vq;.(q; — o a) ^ (a ^ a) => §(ck a) 

The type is a type for binary words. The inhabitants of 
type are the familiar Church integers: 

n = Xf.Xx.{f {/...{fx)...)) 
with n occurrences of /. The following terms for addition 
and multiplication on Church integers are typable in DLAL: 

add = Xn.Xm.Xf.Xx.{nf{mfx)):N^N^N 
mult = Xn.Xm.('m Xk.Xf.Xx.(n f (k f x))) 
mult : N => N 

Finally, we have a partial converse to Proposition|6l 
Proposition 7 If the following conditions hold: 

• t is in normal form, 

• the judgment [F'] i , A' h ^^/^ t : A' can be derived us- 
ing (We) only with instantiation on Culal* formulas, 

then the judgment F; A 'tdlal t : A with F* — F', A* = 
A', A* = A' is derivable. 

To prove this Proposition we use the sequent calculus pre- 
sentation of DLAL. The proof is given in appendixicl 

4 Properties of DLAL 

4.1 Subject reduction 

In this section, we will establish the subject reduction 
property for DLAL. It should be stressed that subject reduc- 
tion is by no means a trivial property in the current setting, 



because lambda-calculus does not have any constructs cor- 
responding to modalities of light logics; as a matter of fact, 
LAL as a type assignment system for lambda-calculus (Fig- 
ure does not satisfy the subject reduction property. For 
this reason, we will give a rather detailed argument here. 
Throughout this section, by F; A h t : A we will mean 
F; A h DLAL t: A.We will also use notation F; A h" t : A 
when T; A h t : A has a derivation of size at most n. 

Lemma 8 (Substitution) 

(1) //F; A t : A then T[B / a]; A[B / a] h" t : A[B / 
a] for every B. 

(2) //Fi;Ai h" u : AandT2;x : A, A2 'r'^ t : B, then 
Fi,F2;Ai,A2 h"+'" : B. 

(3) //;Fi,Ai h" u : AandT2\x : [A]§,A2 h™ t : B, 
thenTi,T2; [Ai]§,A2 h"+'" t[ulx] : B. 

(4) If ; z : C \- u : A and xi : A, . . . , x„ : A, F; A h t : 
B, then z : C, F; A h . . . , u/xn] ■ B. 

A proof is given in Appendix lD.il 

Definition! The l.h.s. premises of (—o e), e) and (§ 

e) as well as the unique premise of (\/ e) are called major 
premises. A DIAL derivation is V§-normal ;/ 

• no conclusion of a fV /) rule is the premise of a (We) 
rule; 

• no conclusion of a (§ /) rule is the major premise of a 
(^ e) rule; 

• no conclusion of (Weak), ( Cntr) and (§ e) is the major 
premise of elimination rules: (^ e), (^ e), f§ e), (V 
e). 
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Lemma 9 (V§ -Normalization) If T;A h t : A has a 

derivation, then it also has a y^-normal derivation. 

This lemma can be proved by employing Substitution 
Lemma (1) and (3) as well as permutability of (Weak), 
(Cntr) and (§ e) over the elimination rules (see Appendix 

Ell. 

Lemma 10 (Abstraction Property) Let F; A h Xx.t : A 
be derivable with a y^-nonnal derivation V. Suppose that 
the last rule (r) of V is neither (Weak), (Cntr) nor (§ e). 
Then, ( r) is an introduction rule corresponding to the out- 
ermost connective of A. 

Proof. By induction on T). First, (r) cannot be (V e); if it 
were, then T) would be of the form 

T; A h Xx.t : \/a.B ^ 
T;Ah Xx.t: B[C/a\ 

Since T> is V§-normal, (r') is neither (weak), (cntr) nor 
(§ e). Hence by the induction hypothesis, (r') must be (V i), 
but that is impossible. 

Second, (r) cannot be (^ e), (=> e) nor (Id), since the 
subject Xx.t does not match the subjects of these rules. 
The only possibility is therefore an introduction rule cor- 
responding to the outermost connective of A. 

As a direct consequence, we have: 

Lemma 11 (Paragraph Property) Let V be a \/%-normal 
derivation. IfD contains an application of (^ e): 

ri;Aihu:§A r2;x: [A]§,A2ht:B 
ri,r2;Ai,A2^ t[u/x] : B 

then u is not of the form Xx.v. 

Proof. Since T) is assumed to be V§-normal, the last rule 
used for deriving the l.h.s. premise is neither (Weak), (Cntr) 
nor (§ e). Hence by the previous lemma, if u is of the form 
Xx.v, the last rule must be (§ i), which contradicts the V§- 
normality of P. 

Theorem 12 (Subject Reduction) // T; A h to : A is 

derivable and to — > ti, then T; A \- ti : A is derivable. 

Proof. By V§-Normalization Lemma, there is a V§- 
normal derivation V of T; A h t : A. The proof is carried 
out by induction on V. 

(Case 1) The last rule of V is (^ e): 



': Vi ': V2 

Ti;Ai^t: A^ B TzjAahMiA 

ri,r2;Ai,A2h(iu):B ^' 

If the redex is inside t or u, then the statement of the the- 
orem follows from the induction hypothesis. If (t u) itself 
is the redex, then t must be of the form Xx.v. By Abstrac- 
tion Property Lemma, the last rule of Vi is (^ i), hence we 
haveri;x : A, Ai \- v : B. By Substitution Lemma (2), 
we have Fi, Ai, A2 h ^[u/a;] : B as required. 

(Case 2) The last rule of T) is (=> e): Similar to (Case 1), 
except that Substitution Lemma (4) is used instead of (2). 

(Case 3) The last rule is (§ e): 

ri;Aihu:§^ V2;x:[A]^,A2^t:B 
Ti,T2]Ai,A2^ t[u/x\:B 

By Paragraph Property Lemma, u is not an abstraction. 
Therefore, no new redex is created by substituting u for x in 
t. Thus each redex in has a counterpart in t or u, and 

we can therefore apply the induction hypothesis to obtain 
the desired result. 

The other cases are straightforward. 

4.2 Normalization 

The depth of a DLAL derivation P is the maximal num- 
ber of premises of (§ i) and r.h.s. premises of (=> e) in a 
branch of V. DLAL types ensure the following strong nor- 
malization property: 

Theorem 13 (Polynomial time strong normalization) 

Let t be a lambda-term which has a typing derivation V of 
depth d in DLAL. Then t reduces to the normal form u in 
at most |ip reduction steps and in time 0(|tp ) on a 
Turing machine. This result holds independently of which 
reduction strategy we take. 

Here we prove a weaker form of the above theorem, 
namely we prove that there exists a reduction sequence from 
t to u which is of length at most |tp and which requires 
time 0(|ip ^ ) to execute. Although the result is weaker, it 
may be helpful for getting an idea of polynomial time nor- 
malization without recourse to LAL. Theorem^] itself can 
be proved by showing that any beta reduction sequence for 
a DLAL typable lambda term can be simulated by a longer 
Ala reduction sequence (see AppendixlEli. 

Definition 2 A stratified term is a term with each abstrac- 
tion symbol X annotated by a natural number d ( called its 
depthj and also possibly by symbol !. 

Thus an abstraction looks like X'^x.t or X'^'x.t. In the 
following, A'^'x.t stands for either X'^x.t or X'^'x.t. When 
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t is a stratified term, t[+l] denotes t with the depths of all 
abstraction subterms increased by 1 . The type assignment 
rules for stratified terms are obtained by modifying the 
rules (-0 i), i), e), (§ i) of DLAL as follows: 



ri;Ai,x:Aht:B 
ri,x : A;Aiht:B 



(^i) 



Ti; Ai h X^'x.t -.A^B 
Ti; Ai h t : A B ■z:C'ru 



(^i) 



A 



ri,2 : C; Ai h {tu[+l\) : B 
;Ai,A2ht:^ 



e) 



(§i) 



Ai;[A2]§hi[+l]:§A 

A redex is at depth d when its main abstraction is at depth 
d. The depth of a term t is the maximal depth of all abstrac- 
tions in it. We write t — when there is a reduction se- 
quence from ttou which consists of reductions of redices 
at depth d. 

Lemma 14 Given a DLAL derivation of T; IS. \- t : A of 
depth d, t can be decorated as a stratified term t' of depth d 
such that F; A h t' : A 

It is not hard to see that V§-Normalization Lemma, Ab- 
straction Property Lemma, Paragraph Property Lemma and 
Subject Reduction Theorem hold for stratified terms as well. 

The following three lemmas are all concerned with ty- 
pable stratified terms. 

Lemma 15 Reducing a redex at depth d does not create a 
new redex at depth less than d. 

Proof. We prove that there is no typable stratified term 
which contains a subterm of the form 

(1) {\*x.t){\''^y.u) with e < d; 

(2) A'^'x.A^'y.i withe < d. 

The lemma easily follows from this, because a lower depth 
redex is created only by reducing (1) or a redex of the form: 
{X''-^x.X^^y.t)uv with e < d. 

The above claim is proved by induction on the size of 
V§-normal derivation V. 

(Case 1) The last inference is i): Since the rule (— o 
i) always introduces an abstraction at depth 0, a term of the 
form (2) is never produced. 

(Case 2) The last inference is (^ e): 



ri;Ai\-t:A^B r2;A2l-u:A 
ri,r2;Ai,A2 h{tu):B 



(— e) 



If t is an abstraction, then the last inference to derive 
Fi; Ai h i : A -o B is not (Weak), (Cntr) nor (§ e), since 2? 



is V§-normal. By Abstraction Property Lemma, the last in- 
ference should be (— o i) and t should be of the form X^x.t' . 
Hence a term of the form (1) is never produced. 
(Case 3) The last inference is (§ e): 



Ti-Ai^u:%A F2;x : A2 h i : B 
Fi,F2;Ai,A2 hiKx] : B 



(§e) 



By Paragraph Lemma, u is not an abstraction. Hence a sub- 
term of the form (1) or (2) is never produced by the substi- 
tution t[u/x\. 

Lemma 16 If t -—>*u, then the length of the reduction se- 
quence is bounded by \t\. 

Proof. Observe that: 

• If a typable stratified term t contains {X'^x.u)v, then 
no{x, u) <1 (see Lemma|3. 

• If a typable stratified term t contains [X'^'x.ujv, then v 
does not contain any abstractions at depth d. 

Hence a reduction at depth d strictly decreases the number 
of abstractions at depth d, that is obviously bounded by 



*u, then \u\ is bounded by 



Lemma 17 If\t\ > 2 and t - 

\tm~i). 

Proof (sketch). Observe that: 



• Reducing a linear redex {X'^x.vi)v2 does not increase 
the size. 

• The number of bound variables at depth d (i.e. those 
bound by A'*') in t is at most \t\ — 1 (trivial). 

• The above number does not increase by a reduction 
C[{X'^'x.vi)v2] — > ^[wi [112/2;]], because V2 contains 
at most one free variable (which is possibly bound by 
another A'" in the context C), and all other variables in 
V2 are bound at a depth strictly greater than d. 

Now, we can also note that: 

• A reduction {X'^^'x.vi)v2 — > i'i[u2/a;] produces n 
copies of V2 and consumes n occurrences of the bound 
variable x at depth d instead. 

• It is possible that the above V2 is substituted into a sub- 
term vslx] which is to be duplicated later. Note that 
such a duplicable subterm [x] may have at most one 
occurrence of a free variable x due to the restriction 
on the rule {=> e). Therefore, when another reduction 
applies to a redex of the form {X'^'y.v')v3[v2], it pro- 
duces m copies of V2, consuming m occurrences of the 
bound variable y at depth d at the same time. 
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As a result, every subterm of t which is to be duphcated 
during the reductions at depth d gives rise to at most |t| — 1 
copies in u. 

Therefore, we conclude that the size of u is bounded by 

\tm-i). 

Theorem 18 (Polynomial time weak normalization) Let 

t be a lambda-term which has a typing derivation V of 
depth d in DIAL. Then t can be normalized within |ip 
reduction steps, and within time 0[\t\ ) on a Turing 
machine. 

Proof. By Lemma O t can be decorated as a stratified 
term t' of depth d. By Lemma [Tsl normalization can be 
done by levels. Namely, there is a reduction sequence of the 
form 

t =to — > ti > ■ ■ - td — > u 

with u normal. Without loss of generality, we may assume 
that \ti\ > 2 for Q < i < d. The length of the reduction 
sequence above is bounded by |to| + |ti| + • • • + \td\ by 
Lemma[^ Hence it is sufficient to show that 

\tQ\ + \tl\ + ■ ■ ■ + \td\ < \tf\ 

The proof is by induction on d. Since it is trivial when d = 
0, let us assume d > 0. Then we have: 



N:Aht:A 



i=0 



< 

< 
< 



If 



\td\ (by the induction hypothesis) 



' + \td-i\i\td-i\ - 1) (byLemmaO 



\tr +\tr\\t\ 



1) 



(by the induction hypothesis) 



\t\ 



It is readily seen that the number \t\'^ also bounds the 
size of every term occurring in the above reduction se- 
quence. Since a beta reduction step t — > u costs time 
0(|t|'^) on a Turing machine, the overall time required for 
normalization is l^p" • 0(|ip''-2) < 0(|<p''^'). 

4.3 Expressiveness 

We will show that polynomial time Turing machines can 
be simulated in DLAL by adapting the proof given for LAL 
in (21 . The key point is that of coercions for type N. 

4.3.1 Coercions 

Coercions will allow us under certain conditions to turn a 
non-linear variable of integer type N into a linear variable, 
and a linear variable of type § into a linear variable of type 
N. We express coercions on the type N as rules derivable 
in NDLAL: 



;m:7V,§AhCiM : §^ 

L; n : §7V, A h t : A 
r;m : iV, A h C2M : A 



(coercl) 
(coerc2) 



where Ci[.] and C2[-] are contexts, which contain as free 
variables some variables of the environments: 

Ci[x] — {m{Xg.Xp.{g {succ p))) Xn.x)0 
C^2[x] — {Xn.x){m SUCC 0) 

and succ is the usual term for successor. Observe that in the 
conclusion of (coerc2) the context and the type of the term 
are not changed, while they are in (coercl). Note also that in 
the premise of (coercl) the variable n is the only non-linear 
variable of the context. 

Lemma 19 For i — 1,2 we have: for any Church integer 
k and term t the term Ci[t\[k/m] reduces to t[k/n]. Hence 
Xm.Ci[t] is extensionally equivalent to Xn.t. 

For instance, Ci[t][2/m] reduces to i[2/rt] as follows: 

Ci[t][2/m] — > {{Xg.Xp.g {succ pjf Xn.t) 

— >* {{Xg.Xp.g {succ p)){Xp.t[succ p/n])) 

— >* {Xp.{t[succ succ p/n])) 

— > t [succ succ 0/ n] 
— t[2/n]. 

4.3.2 Encoding some polynomials 

For the simulation we need to encode polynomials on the 
type N . To keep things short and as it is sufficient for the 
Turing machines we will content ourselves with the family 
of polynomials of the form: 



P[X] = aX" 



with a, 6 e N and d = 2* 



We will use the technique of 1221 . Recall from section |3] 
that we have: 



add: N ^ N 



N 



mult : N ^ N ^^N. 



Using successively the rules (coercl), (coerc2), (§ i), (Cntr), 
(coercl) and (^ i), we get from the typing judgment of 
mult a judgment ; h square : N —o ^'^N (Figure|3}- The 
term square computes the squaring function. 

By composing square k times using the § rules we get 
a term u representing the function x — > with type 
N §4feAr. 

We can derive for multiplication, using (coerc 1) and the 



rules for §, a term multp : ^^N - 
for addition a term addq : §''iV 
Church integers a and b representing a and b can be given 



3 §97V 



§P+2iV and 
§«iV. The 



8 



n\ : N;n2 : N h mult nin2 ■ %N 
; mi : N,n2 : h Ci [mult ni7i2] : 



■ (coercl) 



■,mi : N,m2 : N h C2[Ci[mult nin2]] : §^A'' 



■ (coerc2) 
■(§ i) 



mi : N,m2 : N; h C2[Ci[muZt nin2]] : §^A'' 

m : Af; h C2[Ci[mult nin2]][m/mi,m2] : ^^N 



:m: N h f : 



; h square : N ^ §''A'' 



i) 



■ (Cntr) 

■ (coercl) 



Figure 3. Type derivation for the Squaring function 



types ^^N and §^-/V. Hence, assuming fc > 1 and taking 
p = 4fc — 1, q = 4fc + 1 we finally get the following term 
representing the polynomial P: 

tp = \n.(addq{multp a {u n)))b : N — o §'7V. 

4.3.3 Simulation of Ptime l\iring machines 

The encoding of a Ptime Turing machine in LAL (fT\) can 
be described in two parts: (i) the quantitative part: encod- 
ing the polynomial, (ii) the qualitative part: defining a func- 
tion of type config — « config where config is the type 
of configurations, which simulates an execution step of the 
machine. 

The whole encoding then exploits these two parts to iter- 
ate a suitable number of times the step function on the initial 
configuration. 

One can check on the LAL derivations of (2| that: all the 
derivations, but those of the quantitative part, are done in 
Cdlal*- In particular all rules (Ve) are done on Cdlal* 
formulas. Such a derivation can be converted into a LAL 
typing derivation for a lambda-term t and it is possible to 
assume t is in normal form (otherwise we normalize it). 
Thus, using Proposition we get that all these terms are 
typable in DLAL. Together with the encoding of polynomi- 
als of section 14.3.21 this shows that Ptime Turing machines 
can be encoded in DLAL. Therefore we have: 

Theorem 20 If a function f : {0,1}* {0,1}* is com- 
putable in polynomial time, then there exists a lambda-term 
t and an integer n such that \-dlal t : W ^ and t 

represents f. 

5 Discussion on the DLAL type inference 
problem 



(in the line of [13]): starting from a simple type for the 
term, decorate it with modalities in order to obtain a suit- 
able EAL/LAL type. This approach has been explored for 
EAL (1 1 11) and LAL {f3'^) type inference. 

For EAL, types are decorated with sequences in {!}*, 
while for LAL they range over {!,§}*. In both cases the 
main difficulty is to determine where in the derivation to 
place the exponentials introduction rules: (! i) for EAL and 
(! i), (§ i) for LAL. These rules correspond to boxes in the 
proof-nets syntax (|2|). 

In L12I an algorithm for EAL type inference was de- 
scribed as follows: first place abstract boxes on the simple 
type derivation, parameterized with integer variables (a box 
with parameter n corresponds to n ! rules); then express the 
typing conditions for this abstract derivation, which yield 
linear equations on the parameters. Finding a suitable EAL 
derivation then amounts to solve these systems of linear 
equations. 

In 01 analogous method was used for LAL type in- 
ference, but as there are here two modalities {!, ?} the con- 
straints involved were constraints on words. 

The system DLAL corresponds by the (.)* translation to 
a fragment of LAL where only and !§''' sequences are 
used (and a certain discipline on ! is enforced). In fact ! 
and § are assigned two distinct roles: ! is used to handle po- 
tential duplications while § is used to manage stratification. 
This suggests carrying out the decoration of the simple type 
derivation with the following steps: 

• step 1: finding non-linear applications; this step deals 
with placing ! exponentials in the derivation (which is 
not very different from 1 13,1). 

• step 2: completing the type derivation by placing the § 
rules, which is then similar to EAL inference. 



As there is a forgetful map from propositional EAL/LAL 
to simple types (removing modalities and replacing with 
the problem of type inference for lambda-calculus in 
these systems can be addressed as a decoration problem 



We leave for future work the proper study of DLAL type 
inference and of its complexity. A proposal of algorithm 
following the previous scheme and adapting the EAL pro- 
cedure of II12I can be found in AppendixiGl 
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6 Conclusion and perspectives 

We have presented a polymorphic type system for 
lambda-calculus which guarantees that typed terms can be 
reduced in a polynomial number of steps, and in polyno- 
mial time. This system, DLAL, has been designed as a 
subsystem of LAL. We have proved that it is complete for 
the class PTIME by showing how to encode polynomial 
time Turing machines. Being arguably simpler than Light 
affine logic, DLAL might help to a better understanding of 
LAL, in particular of the reduction strategies it induces on 
lambda-terms. It should also be more amenable to type in- 
ference. Other approaches to characterization of complex- 
ity classes in lambda-calculus have considered restrictions 
on type orders (see LI5, 21j 241 ): it would be interesting 
to examine the possible relations between this line of work 
and the present setting based on linear logic. Finally DLAL 
might provide some new intuitions on the topic of denota- 
tional semantics for light logics (ISl). 
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APPENDIX 
A Sequent calculus for LAL 

The sequent-calculus presentation of LAL is given on 
figure 0] It is equivalent to the natural deduction presenta- 
tion, as a type system: 

Lemma 21 A judgment T \- t : A is derivable in the LAL 
sequent calculus iff it is derivable in NLAL. 

B Sequent calculus for DLAL 

The sequent-calculus presentation of DLAL is given on 
figure|5] 

As usual in a sequent calculus presentation application 
is handled by the left introduction rule for the arrow con- 
nective. Here there are two arrows: and Note that 
in the case of I), the argument u is constrained to be 
typed with a judgment ; z:D h u: A, soto have at most one 
variable, which is Unear. 

Again, it is equivalent to the natural deduction formula- 
tion: 

Lemma 22 A judgment T; A \- t : A is derivable in the 
DLAL sequent calculus iff it is derivable in NDLAL. 

C From derivations in LAL to derivations in 
DLAL: Proof of Proposition 13 

To prove Prop. 0we first prove the analogous property 
with sequent calculus typing (Lemma l25t and then use the 
fact that the sequent calculus and natural deduction presen- 
tations are equivalent ( Lemmas 12 lland l22ll . 

In the rest of this section, unless explicitely stated deriva- 
tions will be sequent calculus derivations and F \-lal t : A 
(resp. F; A \-dlal t : A) will stand for a LAL (resp. 
DLAL) sequent calculus typing judgment. 

Definition 3 We say an LAL derivation is tidy if it satisfies 
the following conditions: 

L formulas in (Id) rules (axioms) do not start with a ! or 
I 

2. a rule \l introducing a formula \A is followed by a rule 
in which \A is active (il, —ol,—or. Cut, \r, §rj or it 
is the last rule of the derivation, 

3. a rule §r is followed by rules for all the discharged 
formulas [-B]§ on the l.h.s. of the sequent, or it is the 
last rule of the derivation. 



Intuitively: condition 2 says that rules U are applied as 
late as possible (with top-down orientation); condition 3 
that rules §Z are applied as early as possible. 

Lemma 23 (tidying lemma) If t is a lambda-term and 
r \^LAL t : A is derivable, then this judgement can be 
obtained with a tidy derivation. If the initial derivation is 
cut-free, one can give a cut-free tidy derivation. 

Proof. If there is in the derivation an (Id) rule (axiom) 
on a formula of the form IB or §5 then one can 7/-expand 
it, using rules U,lr,^l, §r until getting an (Id) rule which is 
not of this form. 

Then we observe that: 

• a !Z rule with main formula I A can commute top-down 
with any rule but one active on lA or rules !r, §r. These 
commutations do not change the lambda-term associ- 
ated to the derivation. 

• a §Z rule acting on [A]^ can commute top-down with 
any rule but the one introducing [v4]§, which is neces- 
sarily a §r rule. These commutations do not change 
the lambda-term associated to the derivation. 

Applying these commutations we eventually end up with a 
tidy derivation of the same judgement. 

Lemma 24 (bang lemma) If V is a tidy cut-free LAL 
derivation of a judgement [F]!,[S]§,A h u : \A with 
T ,'E., is., A in Cdlal*, then there exists a derivation V of 
height inferior or equal to that ofD and ending with: 

X : B h u: A , 

X : [B], ^ u:\A 

7—. — 7 — ; r-r Weak 

X : [B]\,A \- u:\A 

and we have T — B,'E. — 9; 

or the same derivation without x : B, in which case we 
have F = S = 0. 

Proof. Therh.s. formula cannot have been introduced 
by an (Id) rule as the derivation is tidy. Hence it has been 
introduced by a !r rule. Therefore within V there is a sub- 
derivation T>i ending with a rule: 

y.C h t:A 
y : [C], h t:lA 

or the same with no y : C on the l.h.s. 

If there is a following rule in T) call it R. The rule R can 
only be a !/ or Weak rule. If it is U it cannot be the last rule, 
otherwise A would contain a formula IB, which does not 
belong to Cdlal*- As the derivation is tidy the rule R is 
followed by a rule active on \B: Vl, I, ^ r, !r, §r. The 
rules V/, ^ r are excluded because they would introduce a 
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x:Ah x:A 
r h t:C 



Id 



Weak 



A,r h t:C 

Ti^uiAi x:A2, r2\- t:C 
ri,y:Ai^A2,r2ht[yu/x]:C 

x:A[B/a],T h t:C 



x:Wa.A,rht:C 

x:[A]uTh- t:C 
X :!A,r h t:C 

a;:[^]§,r h t:C 
a;:§A,r h i:C 



TiY-u:A x:A,T2'r t:C 
Ti,T2^t[u/x\:C 

x:[A]uy:[A]uTht:C 
z:\A\uTV- t[z/x,z/y]:C 

x:Ai,T^ t:A2 
r h Xx.t-.Ai ^A2 ^ 

r ht:A 



Cut 



Cntr 



r h t:Va.^ 



Vr, (a is not free in F) 



x:[B]\ h t :!A 

r, A h 
[r]!,[A]§ht:§A 



Figure 4. Sequent-calculus for LAL 



formula not belonging to Cd lal, which is impossible. The 
rules r, \r, §r are excluded because they would change 
the r.h.s. formula. Hence the rule R cannot be a U rule. 

Therefore i? is a Weak rule. Similarly one can check 
that if R is not the last rule, then the following rules can 
only be Weak or VZ, -<> I acting on weakened formulas. 
As a consequence we have y — x, C — B,t = u and one 
can replace the part of the derivation below Vi by simply 
a Weak rule and obtain the same judgement as conclusion. 
The resulting derivation is V . 

Lemma 25 If t is a lambda-term, F, S, A, A are in 
I^DLAL, ond T> is an LAL derivation of the judgement 
[F*]!, [S*]§, A* h i : A* such that: 

• T> is cut- free, 

• quantification in T> is only on formulas of Cdlal*, 
then F; §S, A h t : A is derivable in DIAL. 

Proof. To simplify the notations we will omit the symbol 
(.)* on formulas when there is no ambiguity. 

By lemma l23l one can assume the derivation T> is tidy. 
Then by the subformula property and the assumption on 
quantification we get: any formula occurring in T> is in 
Cdlal* or of the form \A with A in Cdlal*- 

We proceed by induction on V, considering its last rule: 

• rule i. 

the last rule is of the form: 



[Si]§,[Fi]!,Ai h u:B [S2]§,[F2]!,A2,x:C h t2 : A 



with F = Fi,F2, A = Ai, A2, S = Si,S2; call Vi 
and T>2 the two immediate subderivations. 

As ^ C is in Cdlal*, C is in Cdlal*- Moreover 
as S2, F2, A2, A G Cdlal* one can apply the induc- 
tion hypothesis to T>2, which gives a DLAL derivation 
2?2 of conclusion: F2; §S2, A2, a; : C h t2 A. 

For T>2 we have two cases: 

- first case: B is not of the form \Bi, 

then B e Cdlal and one can apply the i.h. to 
T>i, getting a DLAL derivation T>'^. We then have 
a DLAL derivation: 



Fi;§Si,Ai ^ u:B 



F2;§S2,A2,a;:C ^ t2 : A 



T;^E,A,y:B h t2[yu/x]:A 

second case: B — \Bi, with Bi g Cdlal, 
by lemma I24I there exists an LAL derivation 
with height inferior to that of T>i ending with: 



z : Di h u : Bi 
z : [Di]i h u:\Bi 
[Di],,Ai h u: !Bi 



I7 



Weak 



with Fi = Di,Ei = 
or 



[S]§,[F],,A h t2[yu/x] -.A 



h u: Bi 
h u:lBi 
Ai h u : \Bi 



Weak 
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;x:A h x:A 
T; A h t:C 



(Id) 
(Weak) 



I],r;n, A h i:C 

Ti;Ai^u:A T2; x: B, A2 ^ t:C 
Ti, Tz; 2/ : A ^ S, Ai , A2 (- t[yu/x] : C 

■,z:D^u:A r;x:B,Ah t:C 



(-°0 



z:D,T;y:A^ B,A\- t[yu/x]:C 

■,T,xi:Bi, . . . ,Xn-B„ h t:A 
r;a;i:§Bi,...,a:„:§B„ hi:§A 

r]x:A[B/a],A h t:C 



H 
(§) 



r;x:ya.A,A h t:C 



(V/) 



ri;Aihit:yl A2 h i : C 



ri,r2;Ai,A2 htKa;]:C 
x:A,y:A,r; A ht:C 



z:A,T;Aht[z/x,z/y]:C 
r;x:A,A\- t:B 



(Cntr) 



T; A h Xx.t:A^B 
x:A,r;A \-t:B 



T; A h Ax.i:A 



B 



(-or) 



T; A h 
T; A h t:Va.A 



(Vr), a is not free in F, A 



Figure 5. Sequent calculus for DLAL 



with Ti = 0, Si = 0. 

Then by i.h. on we get a DAL derivation "Dg 
of either ; z : Di \- u : Bi 01 ; \- u : Bi. 
Let us assume for simplicity we are in the first 
situation (the second one is similar). Then we 
can take for V the following DLAL derivation, 
starting from subderivations Pg and I?2" 



[r,Bi]!, A h ti-.c 



n. 



B,A h ti-.C 



II 



[T]uA h Xx.h : B 



C 



with an immediate subderivation T>2 . 

By i.h. on T>2 we get a DLAL derivation V2, 

which we complete into a DLAL derivation V 

by: 



; z : Di \- u : Bi 



r2;§S2,A2,x:C h t2 : A 



z:Di,T2;^E2,y: l^i ^ A2 H t2[y u/x] : A 
z:i?i,r2;§S2,y: !Bi ^C,Ai,A2 h t2[yu/x 

• rule ^ r: 

We have A = B ^ C and the last rule is of the form: 

: B ^ ti:C 



X 



[r]!,A, ^ 

[r]:, A h Ax.ii : B 
immediate subderivation that we call Vi 



with an 

We distinguish two cases 



- first case: B e jCdlal*, 

then by i.h. on 2?i we get a DLAL derivation !)[ 
and complete it in the following way to get V: 

T;A,x: B h h : C 

L; A h Xx.h : B -oC ^ 

second case: B = \Bi with Bi e Cdlal*, 
as V is tidy, the IBi on the l.h.s. has been intro- 
duced by a !Z rule, which must precede immedi- 
ately the rule — o r. Hence V is of the form: 



Weak 



r,x:Bi;A h h : C 

r; A h Ax.il : IBi 



C 



: A 

• the other inductive cases are straightforward. 

Proof. [Prop. Assume < is a term in normal form and 
[r']), A' \- t : A' can be derived in NLAL using (Ve) only 
with instantiation on Cdlal*- Then by Lemma 1211 there 
is a LAL sequent calculus derivation V of [r'Ji, A' ^lal 
t : A', and quantification in V is only on Cdlal* formu- 
las. As t is in normal form it is easy to see that T) can be 
taken without cut. Then by Lemma IZSIF: A ^dlal t : A 
can be derived in DLAL sequent calculus (with F* = F', 
A* = A', A* = A') thus by Lemma|22lin natural deduc- 
tion DLAL. 

D Proof of subject reduction 
D.l Proof of lemma 1 

Proof. (1) By induction on n. (2) By induction on m. (3) 
By induction on m. When the last rule of the derivation is 
(§i): 



13 



r2;x: [A]5,[A'2] i : §B' ^^'^ 
Apply (2) to obtain 

;ri,Ai,r2,A^ ^-+"^-H[u/x]:B\ 
then apply (§ i) to obtain 

ri,r2;Ai,K] ^-+^t[u/x\:%B'. 

(4) By induction on m. When the last rule of the derivation 
is e): 



X : AT; A h ti : D ^ B ; a;„ : A h : -D 



(^e) 



where x : A = xi : Ai, . . . , Xn-i ■ An-i- By the induc- 
tion hypothesis, we have 

z : C,r; A h ti[u/x] : D ^ B, 

while by (2), we also have 

; 2 : C h t2[u/xn] : D. 

^From these two, we immediately obtain the desired result: 

z : C,r; A h {ti[u/x\ t2[u/x„]) : D ^ B. 



D.2 Proof of Lemma m 

Proof. When the first or the second condition is violated, 
apply the following rewriting rules: 



: V 
T; A i : A 
T; A t : Ma.A 
T; A h"+2 t : A[B/a 



iTi, Ai h" M : A 



(Vi) 
7 (Ve) 



: V 

T; A h" t: A[B/a] 



ri; [Ai]§ h 



u-AA 



(§i) 



: I?2 

r2;a; : [A]§,A2 t : B 



(§e) 



ri,r2;[Ai]§,A2 h"+™+2 t[u/a;] : B 

^ : 2?" 

ri,r2;[Ai]§,A2V"+™i[u/a:] : B 

where V and P" are derivations obtained by Substitution 
Lemma (1) and (3) respectively. The size of the derivation 
strictly decreases. When the third condition is violated, 
permute the two rules at issue: for instance, when the 



conclusion of a (§ e) rule is the major premise of another (§ 
e) rule, apply the rewriting rule in Figure |6l It is not hard 
to see that, given a derivation, the process of applying the 
above rewriting rules terminates eventually, resulting in a 
V§-normal derivation. 

E Simulation lemma and polynomial time 
strong normalization 

In this section, we will give a simulation of DLAL ty- 
pable lambda terms by terms of Ala. More specifically, we 
show that every DLAL typable lambda term t translates to a 
term i of Ala (depending on the typing derivation for t), and 
that any beta reduction sequence from t can be simulated by 
a longer Ala reduction sequence from i. The polynomial 
time strong normalization theorem for DLAL directly fol- 
lows from this fact. 

Let us first recall light affine lambda calculus Ala from 

EH 

Definition 4 The set of (pseudo) terms o/Ala is defined by 
the following grammar: 

t, u ::= x\ Xx.t \ tu\\t \ let u be in 1 1 §i | let u be ^x in t. 

A term of the form (Ax. let x be \y in t[y/x\), where y is 
fresh, is abbreviated by X'x.t. 

The depth of t is the maximal number of occurrences of lu 
and §u in a branch of the term tree for t. 

DLAL can be considered as a type system for Ala. We 
write L; A 1-^^^^ t : A if t is a term of Ala and L; A h 
t : Ais derivable by the type assignment rules in Figure [7] 
The depth of a DLAL derivation V is the maximal number 
of premises of (§ i) and rh.s. premises of e) in a branch 
of 2?. 

The reduction rules of Ala are given on Figure|8l 
A term t is {%,\,com)-normal if neither of the re- 
duction rules (§), (!), (coml) and (coto2) applies to 

t. We write t > u when t reduces to u by ((3) fol- 
lowed by several applications of (§), (!), (coml) and 
(com2). Given an ALA-term t, its erasure is defined by: 
X^ = X {t^')^ ^ t^u'^ 

(Xx.t)- = Xx.{t-) {^t)- = t' 
(let w be ^xinty = t^{u^ lx\ 
The following is the main result of 1251 : 

Theorem 26 (Polytime strong normaUzation for Ala) 
Any typable XhA-tenn t of depth d reduces to the normal 
form in 0{\t\'^ ) reduction steps, and in time 0{\t\'^ ) 
on a Turing machine. This result holds independently of 
which reduction strategy we take. 

Lemma 27 (DLAL and Ala) 
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: Pi ■■ V2 

ri;Aiht;:§A Tz; x : A2 h 7/ : §5 ■. 

Vij2;^i,l^2^u[v/x]:%B Tr,y:m,A3ht:C 
ri,r2,r3;Ai,A2,A3ht[uKa:]/y] :C 

': Pi Fz; X : A2 h m §g Fg; ^ : A3 h t : C 
ri; Ai h ^ : §A r2,r3; x : [A]g, A2, A3 h ^Ky] : C 

Ti, Ta; Ai, A2, A3 h t^ylb/^;] ■ C 

Figure 6. Rewriting rule 

(variable) 



(§e) 



:x : A\- X : A 



Ti;Ai,x:Aht:B , V^; A^V t : A ^ B V^^ 1^2^ u : A ^ 

\ — 01) ( — ° e) 

^ ^ ri,r2;Ai,A2h(tu):S 

, ri;Aihi:yl^B -.z-.C^u-.A, 

ri,z : C; Ai h !u) : S ^ ^ 

xi : A,X2 : ATi; Ai h i : B 

(Cntr) 



Ti; Ai h Ax.t 




^ B 


ri,a; : A; Ai 


h t 


B 


Ti; Ai h A'x.i 


■ A 


B 


ri;Ai 


■ A 


1 



ri,r2;Ai,A2Ht: A ' ' x : A.V^^A^V t{xlx^,xlx2\: B 

;Ai,A2ht:A ^„ ri;Aihw:§A r2; a; : A2 h < : B 



Ai; [A2]§ I- §t : §A ri,r2; Ai, A2 (- let w be §a; in t : B 

(Vi)(*) ' I, ,ro/ 1 (^e) 



Ti; Ai h i : Va.A ^- ''^ ' Ti; Ai h t : A\Bla\ 



Figure 7. DLAL as a type system for Ala 



{1) IfT;A i ■ ^' then T; A "tdlal t- : A and 

\t-\<\t\. 

(2) //F; A l^DLAL t : A, then there is a XhA-tenn t such 
that T] A t : A is derivable, (i)^ = t, and 

the size and the depth oft are bounded by those of the 
derivation o/F; A \^dlal t : A. 

Proof. By induction on the derivation. 

Lemma 28 Let t be a term o/Ala which is neither a vari- 
able X, application {u v) nor let u be §x in v. 

(1) IfT; A ^^Al t:Vai--- Va„.^ B(n> Q), then 
t is of the form Xx.u. 

(2) IfT; A h^LA^ t : Vai • • • Va„.^ ^ B (n > 0), then 
t is of the form X'x.u. 

(3) IfT; A h^LA^ t -.Vai- • • Va„.§yl (n > 0) is deriv- 
able, then t is of the form %u. 



Proof. By induction on the derivation. 
Lemma 29 

(1) IfT; A h;^LA^ {t u) : A and {t u) is {II, com)- 
normal, then t is either x, (ui V2) or Xx.v. 

(2) If F;A \-dYal let i be §x in m : A and 
let t be §x in u is (§, !, com)-normal, then u is either 
X or [vi V2). 

Proof. (1) Assume that t is neither x nor (ui U2). The 
proof is carried out by induction on the derivation. If the 
last inference rule is r) of the form: 



Fi; Ai h < : A -<) B F2;A2l-w:A 
Fi,F2;Ai,A2 h{tu):B 



(^e) 



then t cannot be of the form let vi be §0; in V2 since {t u) is 
(coTO)-normal. Hence by Lemmal28l(l'). t is an abstraction. 
The other cases are similar. 
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{Xx.t)u 


> t[u/x] 


(§) 


let §M be §a; in t 


— > t[u/x] 


(!) 


let !w be Ix in i 


— > t[u/x] 


(cowl) 


(let M be t x in t)v 


— > let M be t x in (tv) 


(coto2) 


let (let M be f x in t) be ^ yin v 


— > let M be t a; in (let t be ] yin v) 



Figure 8. Reduction rules of Ala 



(2) Assume that t is neither x nor {ui U2). The proof is 
again by induction on the derivation. If the last rule is 



ri;Aiht:§A r2;a; : [A]§,A2 H u : g 
ri,r2;Ai,A2 h let t be §x in u : B 



(§e) 



then t cannot be of the form let vi be §a; in V2 since t is 
(com) -normal. Hence by Lemmal28l(3'). t must be of the 
form §w, but that is impossible since let t be %x in u is (§)- 
normal. The other cases are immediate. 

Lemma 30 (Simulation) Let t be a term of Ala which is 
a subterm of a typable term and (§, !, com)-normal. If t~ 
reduces to u by {(3) reduction, then there is a (§, !,com)- 

iP'l 



normal term u of Ala such that t 

t~ ^ 



*u and {u) = u: 



u 
i 



t 



(/3*) 



Proof. By induction on t. 
(Case 1) i is a variable. Trivial. 

(Case 2) t is of the form Xx.v. By the induction hypothesis. 
(Case 3) t is of the form (ui U2). In this case, t~ is 
[u^ u^). When the redex is inside or U2 , the induc- 
tion hypothesis applies. When the redex is f itself, then 
Ui must be of the form Xx.v. By the definition of erasure. 
Ml cannot be a variable nor an application. Therefore, by 
Lemmal29l(l). ui must be of the form Xx.v with [v)^ = v. 
We therefore have 



{Xx.v)u2 



{Xx.v)u2 



(/3) 



(/3*) 



/x] 



V[U2/X] 



as required. 

(Case 4) t is of the form \v. By the induction hypothesis. 
(Case 5) t is of the form let ui be Ix in U2. Since t is a 
subterm of a term typable in DLAL, ui must be a variable 
y. Therefore, is of the form M^[j//a;]. It is then not hard 
to see that if reduces to u, there is some u' such that 



> U 



' and u = u'[y/x]. By the induction hypothesis. 



there is u such that 



U2 u 



U2 



We therefore have 

U2[y/x] 



(/9*) 



(/3) 



u'[y/x] 
i 



let y be \x in U2 



let y be in u' 



as required. 

(Case 6) t is of the form §w. By the induction hypothesis. 
(Case 7) t is of the form let ui be §a; in U2. In this case, t~ 
is it^ By Lemmal29l(2). ui is either a variable or an 

application, and so is . Therefore, the redex in t is either 
inside or results from a redex in by substituting 
for a;. In the latter case, the proof is similar to that of (Case 
5). In the former case, let — > u. Then by the induction 
hypothesis, there is some u such that 



u 
k 



Therefore, we have 



["1 /A 



(0) 



i/x] 



let Ul be §x in U2 
as required. 



(01 



let u be §2: in U2 



Theorem 31 (Polynomial time strong normalization) 

Let t be a X-term which has a typing derivation V in DLAL. 
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Suppose that T) be of size n and of depth d. Then t reduces 
to the normal fonn u in 0{n^ ) reduction steps and in 
time 0{v? ^ ) on a Turing machine. This result holds 
independently of which reduction strategy we take. 

Proof. By Lemmal?7l(2). there is a term i of Ala such 
that {i)^ = t and |t| is bounded by the size of T). Hence by 
Lemma|30l we have: 

t ►■ ►- u 

i 

- (/3*) (/3*) 1 

Since the length of the reduction sequence from t to it is 
bounded by 0(|ip''^') < 0{\V\'^''^' ), so is the one from t 
to u. 

F Normalization 

F.l Proof of LemmaHH 

Let us temporarily use an explicit substitution notation 
t{u/x}, and call a stratified term with explicit substitution 
notations an x-term. The variable x is bound in t{u/x}, 
and the standard variable convention is adopted for explicit 
substitution notations as well. There is an obvious map (.)^ 
from the x-terms to the original stratified term, given by 
{t{u/x})^ — t^[u^ /x]. In the following, t9 stand for an 
x-term of the form t{ui/xi} ■ ■ ■ {un/xn}. 

We prove the following by induction on the number of 

reduction steps: whenever t — there is an x-term u 
such that 

(1) (u)- =u, 

(2) |u| < \t\, and 

(3) if either {Xx'^' .ui)9u2 or ui{u2/x} occurs in u, then 
U2 contains neither a redex at depth d nor an explicit 
substitution; furthermore, U2 may have at most one 
free variable, and in case it has, that variable is ei- 
ther free in u or is bound by an abstraction of the form 
X'^-y.v. 

In the base case, we take u = t. The third property is eas- 
ily checked by induction on the size of a V§-normal typing 
derivation for t. In other cases, we simulate beta reduction 
by the following reduction rules on x-terms: 

{\x'^-.t)eu — > {te){u/x} 
{Xx'^.t)eu — > t[u/x]e. 

It is easily checked that these reduction rules preserve the 
above properties. 



Let us denote by no{u) the number of free variable oc- 
currences in u. We now prove the following by induction 
on the structure of u: when |u| > 2, 

(4) no{u^) < \u\, and 

(5) \u-\ < \u\-i\u\-l). 

Suppose u = ui{u2/x}. Then (4) holds since 

no{{ui{u2/x})^) < no{u^) ~ no{x,u^) + 

no{x, u^) ■ no{u2) 

< \ui\ — no{x,u^) + no{x,Ui) ■ 1 

< l"i| < 

by the induction hypothesis and (3) above (since = U2 
and no{u2) < 1). As for (5), if ui is a variable, then 
|(ui{w2/x})~ I < |w2|, hence the claim holds trivially. Oth- 
erwise, > 2 and we can use the induction hypothesis 
on Ml (in addition to (4)). Thus, 

\{ui{u2/x}y\ < \ui\ + no{x,u^) ■ lu^l 

< • (|ui| - 1) + • |W2| 

< • (|ui| - 1 + |U2|) 

< 1^1(1^1 -!)• 

Putting (1), (2) and (5) together, we have \u\ — \{u)~\ < 
\u\{\u\ - 1) < \t\{\t\ - 1) whenever |u| > 2. 

G Type inference 

One advantage of DLAL over LAL is that it assigns two 
distinct roles to ! and §: the modality ! is used to handle po- 
tential duplications while § is used to manage stratification. 
This separation shows up in particular with type-inference, 
where in the case of DLAL we can take care of the two 
modalities one at a time (contrarily to what happens with 
LAL). 

We give here a type-inference algorithm for proposi- 
tional DLAL, which starting from a lambda-term t and 
its principal simple type B finds all possible decorations 
of B (if any) into a valid DLAL type for t. It will 
use a type-inference procedure for Elementary affine logic 
(HAL). Type-inference algorithms for HAL have been given 
in II IIII2I . Here we will use the algorithm of II2I . 

Given t and its principal simple type B, with environ- 
ment r for the free variables, we will try to decorate the 
simple type derivation V of T h t : B into a LAL deriva- 
tion corresponding to a DLAL derivation (by the (.)* trans- 
lation). For that we proceed in two stages: 

• stage 1: non-linear arguments stage; 

in this stage we place the ! rules in the derivation. This 
corresponds to working out which arguments are linear 
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and which arguments are non-linear. It is close to the 
problem of linear decoration of intuitionistic deriva- 
tions studied in [ 1 3 j . 

• stage 2: stratification stage; 

in this stage we complete the type derivation by plac- 
ing § rules; for that we use the EAL type-inference 
procedure. 

All solutions found by the procedure will give valid DLAL 
type derivations for t. Conversely if t can be typed in DLAL 
with a judgement A \-dlal t : C which is a decoration of 
T \- t : B, then the procedure will provide a derivation of 
A \-DLAL t : C . 

We adopt the following conventions for the simple type 
derivation P of F h t : B: environments are handled as 
multisets; application requires both terms to have environ- 
ments with disjoint sets of variables; contraction and weak- 
ening are handled with explicit rules (with a substitution by 
a fresh variable for contraction (Cntr)) and are performed 
only just before doing an abstraction on the variable. 

Stage 1: non-linear arguments stage. 

We need to determine which applications of the term 
should correspond to e) or to e) rules, which is tied 
to the issue of working out which abstractions correspond 
to i) or to i) rules. 

For that we will associate a boolean parameter to each 
application and abstraction rule of the derivation V, dec- 
orate accordingly the types with these parameters and ex- 
press the validity of this abstract derivation by some con- 
straints which should be satisfied. 

We consider a set of parameters a,b . . . meant to range 
over {0, 1}. The value a — 1 corresponds in a type to a ! 
modality, while a — corresponds to absence of ! modality. 

The constraints are of the form: di = d2, where di is 
either a disjunction of parameters ai V • • • V a„ or a constant 

or L For convenience we will denote here ai . . . a„ for 

01 V • ■ • V a„ and use notation u,v . . . for such disjunctions, 
with n > 0.. 

Abstract types are defined by the two grammars: 

B ::= a\A^B 
A ::— ai . . . anB 

where n > and oi, . . . , a„ are any parameters. The Bs 
are called basic abstract types. 

An instantiation </) is a map from parameters to {0, 1}. 
We write (pi < 02 if for any parameter a we have (pi (a) < 
Ma)- 

Let U{Ai,A2) be the set of constraints on parameters 
obtained for unifying two abstract types Ai and A2, defined 
on Figure|9l If Ai and A2 are abstract types with same un- 
derlying simple type, then m{Ai, A2) is defined inductively 

by: m{Ai, A2) — uiU2Ct if Ai = uia for i = 1, 2; 



m{Ai,A2) = uiU2{'m{A\, A'^) m{Bi,B2)) if A, = 
u^{A^^ B,) for 1^1, 2. 

We handle abstract judgements of the following form: 
r \- t : B where _B is a basic abstract type, F is a environ- 
ment assigning abstract types to variables. 

If F is an environment, the notation aV will stand for the 
environment given by: aF(a:) is defined iff F(a;) — A is 
defined, and then aF(x) = a A. 

A maximal decoration A of a simple type yl is a basic 
abstract type defined by induction on A in the following 
way: if A ~ a atomic then A — a, if A — Ai A2 then 
A — (aAi) — » A2 where the Ai are maximal decorations 
with disjoint parameters and a is a fresh parameter. 

Given a simple type derivation T) we will define induc- 
tively a derivation of abstract judgments V and a set of con- 
straints C(P). Basically the idea is to add a parameter to 
each argument of application and to each abstraction in or- 
der to determine which abstractions should be non-linear. 

Given T), T) and C(P) are defined by: 

• if P is just an axiom rule x : A h x : A then V is 
obtained by replacing A by a maximal decoration A 
and C(2?) = true, the empty set of constraints. 

• if I? is obtained by an application rule on Vi and V2, 
then V is defined from Pi and P2 (taken with disjoint 
parameters) using a fresh parameter a with the (app a) 
rule of Figure[lO| We set C(P) = C(Pi) U C(P2) U 
UiAi,aA2). 

• if P is obtained by an abstraction rule on Pi define 
similarly P from Pi using the (abstr a) rule of Figure 
Uni We set 

rrp^ = /^(^i) ifno(x,t)<i, 

\C{Di)U{a = l} if no{x,t)> 2. - 

• if P is obtained by a contraction rule on Pi define P 
from Pi using the (Cntr) rule of FigureFTOI 

• if P is obtained from Pi by a weakening rule, then P 
has as last rule a weakening on a maximal decoration 
formula. 

We now come back to the simple type derivation V of t 
and consider the associated abstract derivation P and con- 
straints C{'D), that we will denote as C. Note that C has at 
least one solution, as the constant instantiation (p = 1 is a 
solution. 

From a solution (p and the abstract derivation P one de- 
fines a l-derivation P: P is the derivation P where appli- 
cation rules corresponding to (app a) with (p{a) = 1 are 
annotated as (=> e) (note that the types themselves are un- 
changed). In P we say (thinking about LAL proof-nets) that 
the rh.s. subderivation above an e) rule is in a l-box. 
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U{ai...ar,{Ai-^Bi),bi...hm{A2^B2)) = {ai V 
U{ai . . .a„a,bi . . .bma) = {ai V 
U{A, A') = false 



• • • V a„ = 61 V • • • V b,n} U U{Ai,A2) U C/(Bi, S2) 

• • • V a„ = 61 V • • • V bjn} 
in the other cases. 



Figure 9. Unification of abstract types 



Ti,x:Aht:B Fi h : Ai Bi Fa h ^2 : , , 
(abstr a) — — — r — (app a) 



Ti h Xx.t : (aA) B Ti,aT2 h (ii ^2) : 

xi ■.Ai,X2:A2,T^t:B 



X : Tn{Ai, ^2)1 r h- t[x/xi, x/x2] : B 



(Cntr) 



Figure 10. Rules for abstract derivations 



We will try to decorate a ! -derivation V (coming from a 
solution (f>) into a DLAL derivation if the following neces- 
sary conditions are satisfied: 

(i) in V any rh.s. premise of a e) rule has an envi- 
ronment with at most one variable, 

(ii) a variable belongs to at most one environment of 
rh.s. premise of e). 

These conditions are necessary for being able to decorate 
the derivation into a DLAL derivation; in particular (ii) is 
needed to ensure that the variable in a r.h.s. environment of 
e) is linear, in the DLAL derivation. 

If no solution (p gives a !-derivation satisfying (i) and 
(ii) then the initial simple type cannot be decorated into a 
DLAL type. If some solutions satisfy (i) and (ii) then we 
try to decorate the corresponding derivations V into DLAL 
derivations with stage 2 of the procedure. 

Stage 2: stratification stage. 

Assume 2? is a ! -derivation obtained by stage 1 and sat- 
isfying (i) and (ii). 

Let us briefly recall the HAL type inference procedure 
of First we recall the notion of type schemes. We 

consider parameters n,m,ni, . . . ranging over N*. Type 
schemes are defined by the grammar: 

/ I / 1 H l-ni. 

a,(T ::— a\a ^ a \] ^ 

where k can take any positive value and ni , . . . are pa- 
rameters. 

The EAL type inference procedure starts from a lambda- 
term t and proceeds in 3 steps: 

• from the term i a set C [t) of canonical simple forms 
of t is computed. A canonical simple form of i is a 
kind of EAL meta-derivation corresponding to t. The 
set C(t) is finite. 



• an algorithm PT{.) computes, given a canonical sim- 
ple form Q, a triple PT{Q) =< 6,a,C > where: 9 is 
an assignment of types to variables, cr is a type scheme 
for Q and C is a set of linear equations on parameters 
(constraints). 

• for any canonical simple form Q of C{t), if 
PT{Q) =< 6,a,C > and C has a solution X, flien 
from Q, 9, a an EAL type derivation for t can be con- 
structed. 

It was shown that this algorithm is correct and complete 
for EAL (with respect to the EAL typing system without 
sharing: contraction is allowed only on variables). 

In stage 2 of our procedure we proceed in the following 
way: 

• a) first we apply the previous method to t to get its set 
C{t) of canonical simple forms; 

• b) among C{t) we then determine a subset C{t) of 
canonical simple forms compatible with T>; 

• c) we apply function PT{.) to the elements of C{t). If 
for Q in C{t) we have Pt[q) =<9,a,C> and there 
is a solution X to C, then from Q, V, 9, a a DAL type 
derivation for t can be constructed. 

Let us make explicit these steps. To a canonical simple form 
Q one can associate a syntactic tree with boxes T (the boxes 
correspond to the V constructors of the canonical simple 
form). When naming boxes we will use B,Bi . . . . If we 
forget about the boxes the syntactic tree is that of the under- 
lying lambda-term. 

Moreover a ! -derivation V can also be translated into a 
syntactic tree with boxes (forgetting about types): a box is 
put around each argument of a (=^> e) application. 
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Observe that if a canonical abstract derivation Q and a 
!-derivation V correspond to the same term t, then their as- 
sociated trees can only differ by the boxes. 

We say a canonical simple form Q, with tree Tl, is com- 
patible with the !-derivation V, with tree T2, if the following 
conditions hold: 

• any box of T2 corresponds to a box of 7i (that is to say 
Tl is obtained from T2 by adding some boxes); 

• for any box B2 of T2 with input variable x (that is to 

say X is a free variable of the corresponding term) then: 
any box Bi of Ti containg B2 also contains the A node 
abstracting x (and no such box exists if a; is not ab- 
stracted). 

Graphically the second condition amounts to say that in 
Tl no box can be closed below B2 and have x as input. 
These two conditions can be checked by one traversal of 
both trees, and by comparing the tree of each element of the 
finite set C{t) to that of V we can determine C{t) and thus 
complete step b). 

We now consider step c). Let Q be an element of C{t) 
and PT(Q) =< e,a,C >. The procedure Pr(.) assignes 
to each box of (the tree associated to) Q a distinct param- 
eter n. Let us denote hy Bi, ... ,Bk the boxes of Q corre- 
sponding to boxes of V and by m , . . . the corresponding 
parameters assigned by PT{.). 

From the results on PT(.) we know that any solution 
X of C induces an EAL derivation for t. It can also de- 
fine an LAL derivation in the following way: each box Bi 
(1 < « < fc) is instantiated into one !-box and (X{ni)-Y) 
§-boxes (so possibly 0); all other boxes are instantiated by 
§-boxes. For each §-box ((§ i) rules) the type (! or §) of 
the discharged variables can be chosen so as to get a valid 
derivation. Finally an LAL type derivation for t obtained in 
this way is the translation by (.)* of a DLAL derivation. 

Remark 32 This procedure is not very satisfactory because 
it starts by determining a distribution ofl-boxes (with sev- 
eral possibilities) and then enumerates all canonical simple 
derivations before searching which ones match the distri- 
bution of \-boxes. It would be more efficient to compute 
directly the canonical simple derivations corresponding to 
the distribution ofl-boxes. 
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